26 to 50 of 486 Security Testing Jobs in England

global leader in cloud-based treasury solutions, empowering investment firms with cutting-edge technology to optimize financial performance, enhance liquidity, and mitigate risk. As part of our commitment to security and innovation, we are expanding our Information Security Team and seeking a DevSecOps Engineer to drive security automation and best practices across our cloud infrastructure and IT … operations. Job Overview As a DevSecOps Engineer , you will play a pivotal role in integrating security practices into our DevOps pipeline and IT operations . Working at the intersection of operations, security, and development , you will collaborate closely with internal teams to safeguard critical business operations by design and default. You will be responsible for security automation … CI/CD pipeline enhancements , and cloud security management , ensuring compliance with industry standards. Key Responsibilities Security & DevOps Integration: Support and extend the secured CI/CD pipeline to enhance development security. Work with development teams to optimize infrastructure security. Cloud & Infrastructure Security: Maintain and secure AWS cloud infrastructure for clients and internal operations. Automate AWS infrastructure More ❯

global leader in cloud-based treasury solutions, empowering investment firms with cutting-edge technology to optimize financial performance, enhance liquidity, and mitigate risk. As part of our commitment to security and innovation, we are expanding our Information Security Team and seeking a DevSecOps Engineer to drive security automation and best practices across our cloud infrastructure and IT … operations. Job Overview As a DevSecOps Engineer , you will play a pivotal role in integrating security practices into our DevOps pipeline and IT operations . Working at the intersection of operations, security, and development , you will collaborate closely with internal teams to safeguard critical business operations by design and default. You will be responsible for security automation … CI/CD pipeline enhancements , and cloud security management , ensuring compliance with industry standards. Key Responsibilities Security & DevOps Integration: Support and extend the secured CI/CD pipeline to enhance development security. Work with development teams to optimize infrastructure security. Cloud & Infrastructure Security: Maintain and secure AWS cloud infrastructure for clients and internal operations. Automate AWS infrastructure More ❯

global leader in cloud-based treasury solutions, empowering investment firms with cutting-edge technology to optimize financial performance, enhance liquidity, and mitigate risk. As part of our commitment to security and innovation, we are expanding our Information Security Team and seeking a DevSecOps Engineer to drive security automation and best practices across our cloud infrastructure and IT … operations. Job Overview As a DevSecOps Engineer , you will play a pivotal role in integrating security practices into our DevOps pipeline and IT operations . Working at the intersection of operations, security, and development , you will collaborate closely with internal teams to safeguard critical business operations by design and default. You will be responsible for security automation … CI/CD pipeline enhancements , and cloud security management , ensuring compliance with industry standards. Key Responsibilities Security & DevOps Integration: Support and extend the secured CI/CD pipeline to enhance development security. Work with development teams to optimize infrastructure security. Cloud & Infrastructure Security: Maintain and secure AWS cloud infrastructure for clients and internal operations. Automate AWS infrastructure More ❯

global leader in cloud-based treasury solutions, empowering investment firms with cutting-edge technology to optimize financial performance, enhance liquidity, and mitigate risk. As part of our commitment to security and innovation, we are expanding our Information Security Team and seeking a DevSecOps Engineer to drive security automation and best practices across our cloud infrastructure and IT … operations. Job Overview As a DevSecOps Engineer , you will play a pivotal role in integrating security practices into our DevOps pipeline and IT operations . Working at the intersection of operations, security, and development , you will collaborate closely with internal teams to safeguard critical business operations by design and default. You will be responsible for security automation … CI/CD pipeline enhancements , and cloud security management , ensuring compliance with industry standards. Key Responsibilities Security & DevOps Integration: Support and extend the secured CI/CD pipeline to enhance development security. Work with development teams to optimize infrastructure security. Cloud & Infrastructure Security: Maintain and secure AWS cloud infrastructure for clients and internal operations. Automate AWS infrastructure More ❯

Date: 01.08.2025 col-wide Job Description: Job Description The team you'll be working with: As a strategic and leadership role you will be instrumental in shaping and driving security and risk programs to align with internal business objectives as well as industry good practice (including Secure by Design aligned to UK Government principles) and regulatory requirements (including GovAssure … across engagements Enhance governance processes and advise on how best to evidence alignment with regulatory requirements (such as NCSC CAF) and industry good practice (including Secure by Design) Providing security expertise across security standards and accreditations, measure and control the effectiveness of the security controls framework and maintain the Information Security Management System. Deriving and delivering … documented Information Security Management Plans which incorporate Regulatory, Legal and Compliance in relation to applicable security policies. Standards and guidelines Assiting with the identification of identified risks and emerging cyber security vulnerabilities and threats. The subsequent analysis to quantify and lead risk mitigation plans Work with Service Management to ensure that partners and suppliers adhere to agreed More ❯

global leader in cloud-based treasury solutions, empowering investment firms with cutting-edge technology to optimize financial performance, enhance liquidity, and mitigate risk. As part of our commitment to security and innovation, we are expanding our Information Security Team and seeking a DevSecOps Engineer to drive security automation and best practices across our cloud infrastructure and IT … operations. Job Overview As a DevSecOps Engineer , you will play a pivotal role in integrating security practices into our DevOps pipeline and IT operations . Working at the intersection of operations, security, and development , you will collaborate closely with internal teams to safeguard critical business operations by design and default. You will be responsible for security automation … CI/CD pipeline enhancements , and cloud security management , ensuring compliance with industry standards. Key Responsibilities Security & DevOps Integration: Support and extend the secured CI/CD pipeline to enhance development security. Work with development teams to optimize infrastructure security. Maintain and secure AWS cloud infrastructure for clients and internal operations. Automate AWS infrastructure builds following CIS hardening More ❯

to devise specific technology related audit tests Responsible for staying current on regulatory requirements and technological changes within the industry Skills/Knowledge Knowledge of audit procedures and technical security and control standards usually obtained through related work experience Solid understanding of ITGC and related processes (e.g., Configuration Management, Vendor Management, Access and Identity Management) Understanding of Information Technology … Service Management (ITSM) controls (e.g., Incident Management, Change Management, Problem Management) Skills as needed to perform testing of application controls (e.g., BC/DR, Application Security Testing, Interface Controls) Skills as needed to perform testing of information security and cybersecurity controls (e.g., Vulnerability Management, Incident Response, Network Security) Analytical and organizational skills are necessary … to conduct audits Strong issue writing and workpaper documentation skills Knowledge and awareness on NIST 800-53 controls, NIST Cyber Security Framework, SANS and Center for Internet Security (CIS) is a plus Knowledge of technology controls around Cloud Computing reviews - AWS, Azure and Google cloud is a plus Knowledge of systems and databases such as Windows, UNIX, MS More ❯

The Role Embed security best practices within the SDLC, collaborating with developers to ensure secure coding. Conduct security assessments, identify potential threats, and mitigate risks in web and mobile applications. Perform application security testing (SAST, DAST) and manual security code reviews. Implement and manage security tools such as SAST, DAST, SCA, and CI/… CD security integrations. Investigate security incidents, prioritise remediation and guide teams on secure development practices. Ensure applications meet industry standards (OWASP Top 10, NIST, ISO 27001) and regulatory requirements (GDPR, PCI-DSS, etc.) Educate engineers and stakeholders on security threats, vulnerabilities and secure coding practices. Skills 5+ years of experience in application security, penetration testing, or software security engineering. Strong knowledge of secure coding principles in one or more languages (e.g., Python, Java, JavaScript, Go, .NET). Hands-on experience with SAST, DAST, SCA and security automation in CI/CD pipelines. Familiarity with cloud security (AWS, Azure, GCP) and container security (Docker, Kubernetes). Knowledge of OWASP Top More ❯

The Role Embed security best practices within the SDLC, collaborating with developers to ensure secure coding. Conduct security assessments, identify potential threats, and mitigate risks in web and mobile applications. Perform application security testing (SAST, DAST) and manual security code reviews. Implement and manage security tools such as SAST, DAST, SCA, and CI/… CD security integrations. Investigate security incidents, prioritise remediation and guide teams on secure development practices. Ensure applications meet industry standards (OWASP Top 10, NIST, ISO 27001) and regulatory requirements (GDPR, PCI-DSS, etc.) Educate engineers and stakeholders on security threats, vulnerabilities and secure coding practices. Skills 5+ years of experience in application security, penetration testing, or software security engineering. Strong knowledge of secure coding principles in one or more languages (e.g., Python, Java, JavaScript, Go, .NET). Hands-on experience with SAST, DAST, SCA and security automation in CI/CD pipelines. Familiarity with cloud security (AWS, Azure, GCP) and container security (Docker, Kubernetes). Knowledge of OWASP Top More ❯

The Role Embed security best practices within the SDLC, collaborating with developers to ensure secure coding. Conduct security assessments, identify potential threats, and mitigate risks in web and mobile applications. Perform application security testing (SAST, DAST) and manual security code reviews. Implement and manage security tools such as SAST, DAST, SCA, and CI/… CD security integrations. Investigate security incidents, prioritise remediation and guide teams on secure development practices. Ensure applications meet industry standards (OWASP Top 10, NIST, ISO 27001) and regulatory requirements (GDPR, PCI-DSS, etc.) Educate engineers and stakeholders on security threats, vulnerabilities and secure coding practices. Skills 5+ years of experience in application security, penetration testing, or software security engineering. Strong knowledge of secure coding principles in one or more languages (e.g., Python, Java, JavaScript, Go, .NET). Hands-on experience with SAST, DAST, SCA and security automation in CI/CD pipelines. Familiarity with cloud security (AWS, Azure, GCP) and container security (Docker, Kubernetes). Knowledge of OWASP Top More ❯

The Role Embed security best practices within the SDLC, collaborating with developers to ensure secure coding. Conduct security assessments, identify potential threats, and mitigate risks in web and mobile applications. Perform application security testing (SAST, DAST) and manual security code reviews. Implement and manage security tools such as SAST, DAST, SCA, and CI/… CD security integrations. Investigate security incidents, prioritise remediation and guide teams on secure development practices. Ensure applications meet industry standards (OWASP Top 10, NIST, ISO 27001) and regulatory requirements (GDPR, PCI-DSS, etc.) Educate engineers and stakeholders on security threats, vulnerabilities and secure coding practices. Skills 5+ years of experience in application security, penetration testing, or software security engineering. Strong knowledge of secure coding principles in one or more languages (e.g., Python, Java, JavaScript, Go, .NET). Hands-on experience with SAST, DAST, SCA and security automation in CI/CD pipelines. Familiarity with cloud security (AWS, Azure, GCP) and container security (Docker, Kubernetes). Knowledge of OWASP Top More ❯

The Role Embed security best practices within the SDLC, collaborating with developers to ensure secure coding. Conduct security assessments, identify potential threats, and mitigate risks in web and mobile applications. Perform application security testing (SAST, DAST) and manual security code reviews. Implement and manage security tools such as SAST, DAST, SCA, and CI/… CD security integrations. Investigate security incidents, prioritise remediation and guide teams on secure development practices. Ensure applications meet industry standards (OWASP Top 10, NIST, ISO 27001) and regulatory requirements (GDPR, PCI-DSS, etc.) Educate engineers and stakeholders on security threats, vulnerabilities and secure coding practices. Skills 5+ years of experience in application security, penetration testing, or software security engineering. Strong knowledge of secure coding principles in one or more languages (e.g., Python, Java, JavaScript, Go, .NET). Hands-on experience with SAST, DAST, SCA and security automation in CI/CD pipelines. Familiarity with cloud security (AWS, Azure, GCP) and container security (Docker, Kubernetes). Knowledge of OWASP Top More ❯

The Role Embed security best practices within the SDLC, collaborating with developers to ensure secure coding. Conduct security assessments, identify potential threats, and mitigate risks in web and mobile applications. Perform application security testing (SAST, DAST) and manual security code reviews. Implement and manage security tools such as SAST, DAST, SCA, and CI/… CD security integrations. Investigate security incidents, prioritise remediation and guide teams on secure development practices. Ensure applications meet industry standards (OWASP Top 10, NIST, ISO 27001) and regulatory requirements (GDPR, PCI-DSS, etc.) Educate engineers and stakeholders on security threats, vulnerabilities and secure coding practices. Skills 5+ years of experience in application security, penetration testing, or software security engineering. Strong knowledge of secure coding principles in one or more languages (e.g., Python, Java, JavaScript, Go, .NET). Hands-on experience with SAST, DAST, SCA and security automation in CI/CD pipelines. Familiarity with cloud security (AWS, Azure, GCP) and container security (Docker, Kubernetes). Knowledge of OWASP Top More ❯

Join to apply for the Cyber Security Engineer role at Circle Group 1 week ago Be among the first 25 applicants Join to apply for the Cyber Security Engineer role at Circle Group Cyber Security Engineer Salary/Rate: up to £700 per day (inside IR35) Location: Hybrid London Contract Duration: until October 2025 We are currently … looking for a Cyber Security Engineer for our government client. This Cyber Security Engineer role is hybrid, based between 2-3 days per week on site in central London and the remainder of the week working remotely. Role: Cyber Security Engineer Salary/Rate: up to £700 per day (inside IR35) Location: Hybrid London Contract Duration: until … October 2025 We are currently looking for a Cyber Security Engineer for our government client. This Cyber Security Engineer role is hybrid, based between 2-3 days per week on site in central London and the remainder of the week working remotely. The contract for the Cyber Security Engineer position is until October 2025 with potential to More ❯

Join to apply for the Security Cloud Engineer role at Vista . Get AI-powered advice on this job and more exclusive features. Job Profile We are seeking a skilled Security Cloud Engineer to join our team. The ideal candidate will be responsible for integrating security practices into our DevOps processes, managing security in our cloud … infrastructure, and implementing best practices for Web Application Firewalls (WAF) and other security measures. A successful candidate will be able to audit our environment for vulnerabilities, prioritize projects based on risk, and collaborate with cloud architects, development, operations, and security teams to ensure our applications and infrastructure are secure, scalable, and resilient. Your Responsibilities Implement and manage security tools and practices in CI/CD pipelines. Automate security testing, vulnerability assessments, and compliance checks. Work closely with development teams to ensure secure coding practices. Develop and maintain infrastructure as code (IaC) scripts with security best practices. Monitor and respond to security incidents and alerts. Conduct regular security audits and risk assessments. Stay More ❯

Job Details: Senior Cyber Security Engineer Vacancy Name: Senior Cyber Security Engineer Vacancy No: VN447 Employment Type: Full-Time Business Name: PayPoint Network Ltd Location: Remote (Hybrid) with some travel required What will you be doing? We have an exciting opportunity for a Senior Cyber Security Engineer to join the PayPoint Group team. If you’re passionate … and like a challenge, then please keep reading.... You will be responsible for creating, implementing, and maintaining security content such as rules, playbooks, dashboards, and reports for our security systems. This role requires a strong understanding of security best practices and experience working with enterprise security platforms within a SOC environment. You will join the Information … Security team and use your experience to provide technical guidance and mentorship to existing team members. You'll help keep our systems safe by setting up security alerts, improving threat detection, and automating incident response. Managing logs and ensuring our most important assets are protected will be part of your daily tasks. You'll monitor security threats More ❯

We are looking for a hands-on Information Security Professional with extensive practical experience in information security best practices and application in an enterprise cloud SaaS environment. The ideal candidate will have a strong background in AWS, experience with ISO 27001, SOC 2, and the ability to communicate the importance of information security across all business levels. … in cloud software-as-a-service (SaaS), leveraging cutting-edge technology to deliver exceptional solutions hosted on Amazon AWS. We are committed to maintaining the highest standards of information security to protect our clients and uphold our reputation in the industry. We are seeking a dedicated and experienced Information Security Professional to join our team and lead our … information security initiatives. Autologyx is a data driven workflow and process automation platform that enables businesses to orchestrate, automate, integrate and scale, complex non-linear processes. We allow customers to build and design solutions to automate complex processes. This is achieved by providing the tools to create relational data models, a canvas for designing your workflows and processes, managing More ❯

Lead Security Engineer JPMorgan Chase & Co. London, United Kingdom Job Description As a Platform Engineer at JPMorgan Chase within the Platform SDLC team, you are the heart of this venture, focused on getting smart ideas into the hands of our customers. You have a curious mindset, thrive in collaborative squads, and are passionate about new technology. By your nature … role where you'll be a key part of a high-performing team delivering secure software solutions. Make a real impact as you help shape the future of software security at one of the world's largest and most influential companies. As a Lead Security Engineer at JP Morgan Chase within the Platform team, you are an integral … contributor, you are responsible for carrying out critical technology solutions with tamper-proof, audit defensible methods across multiple technical areas within various business functions. Job responsibilities Design and enforce security best practices in public cloud (AWS, Azure, GCP) Show strong experience defining and implementing infrastructure as Code (IaC), working with CI/CD pipelines, and associated automation tooling. Integrate More ❯

Job Details: Senior Cyber Security Engineer Full details of the job. Vacancy Name: Senior Cyber Security Engineer Vacancy No: VN443 Employment Type: Full-Time Business Name: Love2shop Location: Liverpool Who are we? Love2shop (https://www.love2shop.co.uk) is a business bringing vitality to the world of reward and recognition, helping people to celebrate the moments that matter most … by UK-based company, PayPoint, so there are many exciting developments to look forward to. Does this sound like you? We have an exciting opportunity for a Senior Cyber Security Engineer to come join the Love2shop team. If you’re passionate and like a challenge, then please keep reading. About the role: Love2shop is looking to expand its Information … Security team, and we have a new role for a Senior Cyber Security Engineer. You will be responsible for creating, implementing, and maintaining security content such as rules, playbooks, dashboards, and reports for our security systems. This role requires a strong understanding of security best practices, and experience working with enterprise security platforms within More ❯

Job Purpose The Data Security Manager will partner with multiple divisions and technical managers to enhance security aspects of the data security program. Extensive oversight and control of CLS information assets, mitigating the risks of data loss at CLS in all aspects of day-to-day business. The individual will be accountable for the Data Security Program, setting strategic direction and driving operational excellence while leveraging resources distributed across several functional teams. The Data Security Manager will be responsible for analyzing potential weaknesses and identifying a roadmap to improve the security of information assets across CLS. The candidate will advise Business Owners, developers, and technical teams on options to mitigate risk. The candidate … must have excellent verbal, written, analytical and interpersonal communication skills. Essential Functions/Major Duties and Responsibilities Strategic Provide strategic direction specific to data security management. Build and maintain a robust data security program while aligning closely with CLS's mission. Improve and manage the data security program and the company-wide security standards for the More ❯

executing advanced penetration tests and vulnerability assessments across a diverse portfolio of applications. This is a hands-on, technical role where you'll actively identify, exploit, and help remediate security weaknesses in web, mobile, and cloud-based applications. You'll be at the forefront of defending against cyber threats by implementing cutting-edge security tools, collaborating with development … teams to integrate security into the SDLC, and playing a critical role in protecting the organisation's digital assets. The successful candidate will play a hands-on role in testing the security of applications, networks, and systems, while ensuring that security standards are integrated into the development process. Key Responsibilities: Penetration Testing & Vulnerability Assessment: Conduct … exploits. Analyse and prioritise vulnerabilities based on risk and provide detailed technical reports with recommended remediation steps for developers and system administrators. Keep up to date with the latest security vulnerabilities, exploits, and attack methodologies to ensure effective penetration testing. Security Risk Management: Develop and manage the organisation's vulnerability management program, ensuring compliance with internal policies and More ❯

required to achieve the desired outcomes. Identifies and sets appropriate quality standards and parameters for products. Apply the resourcing model & time estimates required to complete the end-to-end testing requirement. Ability to define the reporting content for the correct audience combined with the ability to scale the presentation of these reports to the appropriate audience. Implementation & Execution Functional … Black Box) testing: Deliver 100% front end Test scenario coverage and defect evaluation of solution/product within a defined timeframe. Non-Functional (White Box) testing: Using knowledge of the inner workings of the solution to expand on test cases and test for known outcomes. Further apply this knowledge to also test for negative expected outcomes thus assuring … complete end to end functionality of the product solution per its design. Deliver Security, availability, and performance testing management in accordance to the standards defined. Policy and Standards review (Technology Policies): All Technology policies to be reviewed and annual reviews done. Testing Automation: Deliver against plan for automated testing, regression testing and load testing More ❯

Job Description: We are seeking a motivated Application Security Code Reviewer to join our team. The ideal candidate will be responsible for ensuring the security and integrity of our software applications using comprehensive code review tools and security testing. This role involves performing static code analysis, dynamic code analysis, and software composition analysis to identify and mitigate … security vulnerabilities. The role could also include other tasks such as penetration tests and retests, automations, pipeline configurations, and more. Contract Duration: 12 MONTH CONTRACT Key Responsibilities: Configure and manage automated security testing tools to perform regular scans of the codebase in static code analysis, dynamic, and API tests. Analyze the results of security scans and … identify true positive findings. Collaborate with the development team to provide detailed feedback and recommendations for remediation of identified security issues. Document and report security findings, including mitigation strategies. Qualifications and Tech Skills: Bachelor's degree in Computer Science, Information Security, or a related field. Experience in application security, code review, and security testing. Basic More ❯

Cyber Security Engineer required work with a Government Department. This is a 5 month contract, paying £700 per day, inside IR35, hybrid working (2 days per week on-site in London) You will be required to have an active SC Clearance You will join the Application Security Team. This is an AppSec team focused on building security automation into delivery pipelines and conducting security focused tests against digital services. Key Responsibilities Perform penetration testing and vulnerability assessments of web applications, APIs, and cloud infrastructure. Evaluate the automated security tooling into CI/CD pipelines (SAST, DAST, dependency checking, IaC etc), and make necessary recommendations. Collaborate with developers to remediate identified vulnerabilities and ensure … secure code practices. Provide expert input on cloud security (AWS, Azure, or GCP) and DevSecOps tooling. Assist in maintaining security assurance across the SDLC in line with NCSC guidelines. Essential Criteria Penetration testing, ethical hacking, or vulnerability assessments. Security testing tools (e.g., Burp Suite, OWASP ZAP, Nikto, Nmap, Metasploit, etc.). DevSecOps principles and tools More ❯

Cyber Security Engineer - London (Hybrid) - £700 per day inside IR35 - 4 months+ All applicants must hold an active SC clearance. My client is on the hunt for a Cyber Security Engineer to join a central government client of theirs. You will be joining an AppSec team focused on building security automation into delivery pipelines and conducting security focused tests against digital services. Key Responsibilities Perform penetration testing and vulnerability assessments of web applications, APIs, and cloud infrastructure. Evaluate the automated security tooling into CI/CD pipelines (SAST, DAST, dependency checking, IaC etc), and make necessary recommendations. Collaborate with developers to remediate identified vulnerabilities and ensure secure code practices. Provide expert input on cloud … security (AWS, Azure, or GCP) and DevSecOps tooling. Assist in maintaining security assurance across the SDLC in line with MoJ and NCSC guidelines. Essential Criteria Penetration testing, ethical hacking, or vulnerability assessments. Security testing tools (e.g., Burp Suite, OWASP ZAP, Nikto, Nmap, Metasploit, etc.). DevSecOps principles and tools (e.g., Veracode, SonarQube, GitHub Advanced Security More ❯